Modifier and Type | Method and Description |
---|---|
String |
escape(String value)
Escapes special characters in a string for use in a VQL statement.
|
QueryResponse |
query(String vqlQuery)
Executes the given
vqlQuery . |
QueryResponse query(String vqlQuery)
vqlQuery
.vqlQuery
- VQL query to executeString escape(String value)
Escaped characters include single quotes and backslashes. This method does not escape reserved keywords, such as SELECT or WHERE.
All user-provided values should be escaped to ensure your queries execute as expected. For example, in the following VQL statement:
SELECT id FROM user__sys WHERE name__v='O'Brien'The
name
value is a user-entered value which, if not escaped, could cause the VQL parser to fail because of the special character.
Note that improperly escaped VQL will not bypass configured security.
value
- the value to escapeCopyright © Veeva Systems 2017–2019. All rights reserved.